All 7 CVE vulnerabilities found in WPAdverts, with AI-generated Chinese analysis, references, and POCs.
Vendor: Greg Winiarski
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-27092 | WordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerability CWE-862 | 8.2AI | HighAI | 2026-02-19 |
| CVE-2025-54024 | WordPress WPAdverts plugin <= 2.2.5 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-07-16 |
| CVE-2025-49878 | WordPress WPAdverts plugin <= 2.2.4 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-06-17 |
| CVE-2025-48269 | WordPress WPAdverts plugin <= 2.2.3 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-05-19 |
| CVE-2025-47440 | WordPress WPAdverts plugin <= 2.2.2 - Local File Inclusion Vulnerability CWE-98 | 7.5 | High | 2025-05-07 |
| CVE-2025-39576 | WordPress WPAdverts plugin <= 2.2.1 - Cross Site Scripting (XSS) Vulnerability CWE-79 | 6.5 | Medium | 2025-04-16 |
| CVE-2024-37238 | WordPress WPAdverts plugin <= 2.1.2 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-01-02 |
All 7 known CVE vulnerabilities affecting WPAdverts with full Chinese analysis, references, and POCs where available.